UNPKG

expo-auth-session

Version:

Expo module for browser-based authentication

docs.expo.dev/versions/latest/sdk/auth-session

expo/expo

172 lines 7.27 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
import * as ServiceConfig from './Discovery'; import { Headers } from './Fetch'; import { AccessTokenRequestConfig, GrantType, RefreshTokenRequestConfig, RevokeTokenRequestConfig, TokenRequestConfig, TokenResponseConfig, TokenType, TokenTypeHint } from './TokenRequest.types'; /** * Returns the current time in seconds. */ export declare function getCurrentTimeInSeconds(): number; /** * Token Response. * * [Section 5.1](https://tools.ietf.org/html/rfc6749#section-5.1) */ export declare class TokenResponse implements TokenResponseConfig { /** * Determines whether a token refresh request must be made to refresh the tokens * * @param token * @param secondsMargin */ static isTokenFresh(token: Pick<TokenResponse, 'expiresIn' | 'issuedAt'>, /** * -10 minutes in seconds */ secondsMargin?: number): boolean; /** * Creates a `TokenResponse` from query parameters returned from an `AuthRequest`. * * @param params */ static fromQueryParams(params: Record<string, any>): TokenResponse; accessToken: string; tokenType: TokenType; expiresIn?: number; refreshToken?: string; scope?: string; state?: string; idToken?: string; issuedAt: number; /** * Contains the unprocessed token response. Use it to access properties which aren't part of RFC 6749. * */ rawResponse?: unknown; constructor(response: TokenResponseConfig, rawResponse?: unknown); private applyResponseConfig; getRequestConfig(): TokenResponseConfig; refreshAsync(config: Omit<TokenRequestConfig, 'grantType' | 'refreshToken'>, discovery: Pick<ServiceConfig.DiscoveryDocument, 'tokenEndpoint'>): Promise<TokenResponse>; shouldRefresh(): boolean; } export declare class Request<T, B> { protected request: T; constructor(request: T); performAsync(discovery: ServiceConfig.DiscoveryDocument): Promise<B>; getRequestConfig(): T; getQueryBody(): Record<string, string>; } /** * A generic token request. */ export declare class TokenRequest<T extends TokenRequestConfig> extends Request<T, TokenResponse> implements TokenRequestConfig { grantType: GrantType; readonly clientId: string; readonly clientSecret?: string; readonly scopes?: string[]; readonly extraParams?: Record<string, string>; constructor(request: T, grantType: GrantType); getHeaders(): Headers; performAsync(discovery: Pick<ServiceConfig.DiscoveryDocument, 'tokenEndpoint'>): Promise<TokenResponse>; getQueryBody(): Record<string, string>; } /** * Access token request. Exchange an authorization code for a user access token. * * [Section 4.1.3](https://tools.ietf.org/html/rfc6749#section-4.1.3) */ export declare class AccessTokenRequest extends TokenRequest<AccessTokenRequestConfig> implements AccessTokenRequestConfig { readonly code: string; readonly redirectUri: string; constructor(options: AccessTokenRequestConfig); getQueryBody(): Record<string, string>; getRequestConfig(): { clientId: string; clientSecret: string | undefined; grantType: GrantType; code: string; redirectUri: string; extraParams: Record<string, string> | undefined; scopes: string[] | undefined; }; } /** * Refresh request. * * [Section 6](https://tools.ietf.org/html/rfc6749#section-6) */ export declare class RefreshTokenRequest extends TokenRequest<RefreshTokenRequestConfig> implements RefreshTokenRequestConfig { readonly refreshToken?: string; constructor(options: RefreshTokenRequestConfig); getQueryBody(): Record<string, string>; getRequestConfig(): { clientId: string; clientSecret: string | undefined; grantType: GrantType; refreshToken: string | undefined; extraParams: Record<string, string> | undefined; scopes: string[] | undefined; }; } /** * Revocation request for a given token. * * [Section 2.1](https://tools.ietf.org/html/rfc7009#section-2.1) */ export declare class RevokeTokenRequest extends Request<RevokeTokenRequestConfig, boolean> implements RevokeTokenRequestConfig { readonly clientId?: string; readonly clientSecret?: string; readonly token: string; readonly tokenTypeHint?: TokenTypeHint; constructor(request: RevokeTokenRequestConfig); getHeaders(): Headers; /** * Perform a token revocation request. * * @param discovery The `revocationEndpoint` for a provider. */ performAsync(discovery: Pick<ServiceConfig.DiscoveryDocument, 'revocationEndpoint'>): Promise<boolean>; getRequestConfig(): { clientId: string | undefined; clientSecret: string | undefined; token: string; tokenTypeHint: TokenTypeHint | undefined; }; getQueryBody(): Record<string, string>; } /** * Exchange an authorization code for an access token that can be used to get data from the provider. * * @param config Configuration used to exchange the code for a token. * @param discovery The `tokenEndpoint` for a provider. * @return Returns a discovery document with a valid `tokenEndpoint` URL. */ export declare function exchangeCodeAsync(config: AccessTokenRequestConfig, discovery: Pick<ServiceConfig.DiscoveryDocument, 'tokenEndpoint'>): Promise<TokenResponse>; /** * Refresh an access token. * - If the provider didn't return a `refresh_token` then the access token may not be refreshed. * - If the provider didn't return a `expires_in` then it's assumed that the token does not expire. * - Determine if a token needs to be refreshed via `TokenResponse.isTokenFresh()` or `shouldRefresh()` on an instance of `TokenResponse`. * * @see [Section 6](https://tools.ietf.org/html/rfc6749#section-6). * * @param config Configuration used to refresh the given access token. * @param discovery The `tokenEndpoint` for a provider. * @return Returns a discovery document with a valid `tokenEndpoint` URL. */ export declare function refreshAsync(config: RefreshTokenRequestConfig, discovery: Pick<ServiceConfig.DiscoveryDocument, 'tokenEndpoint'>): Promise<TokenResponse>; /** * Revoke a token with a provider. This makes the token unusable, effectively requiring the user to login again. * * @param config Configuration used to revoke a refresh or access token. * @param discovery The `revocationEndpoint` for a provider. * @return Returns a discovery document with a valid `revocationEndpoint` URL. Many providers do not support this feature. */ export declare function revokeAsync(config: RevokeTokenRequestConfig, discovery: Pick<ServiceConfig.DiscoveryDocument, 'revocationEndpoint'>): Promise<boolean>; /** * Fetch generic user info from the provider's OpenID Connect `userInfoEndpoint` (if supported). * * @see [UserInfo](https://openid.net/specs/openid-connect-core-1_0.html#UserInfo). * * @param config The `accessToken` for a user, returned from a code exchange or auth request. * @param discovery The `userInfoEndpoint` for a provider. */ export declare function fetchUserInfoAsync(config: Pick<TokenResponse, 'accessToken'>, discovery: Pick<ServiceConfig.DiscoveryDocument, 'userInfoEndpoint'>): Promise<Record<string, any>>; //# sourceMappingURL=TokenRequest.d.ts.map